Commit graph

77 commits

Author SHA1 Message Date
023444f08a Adding terms of service 2022-12-15 12:36:20 +02:00
8d747c87ea Adding source code link 2022-12-15 12:29:34 +02:00
34415f0767 Adding prune and scan boop services 2022-12-15 12:25:45 +02:00
a63e516808 merging index.html changes to boop.html 2022-12-15 11:58:50 +02:00
b5230f7406 Merge branch 'master' into boop 2022-12-15 11:40:27 +02:00
Mia Herkt
57c4b6853f
Prevent unreasonably long MIME types 2022-12-13 23:41:12 +01:00
Mia Herkt
77801efd21
Fix URL test issue 2022-12-13 23:18:40 +01:00
Mia Herkt
d5763a9854
File: Fix 404 case with secret URLs 2022-12-13 23:17:56 +01:00
Mia Herkt
aaf0e4492a
Record file sizes in db
Moderation interface is going to use this.
2022-12-13 23:04:48 +01:00
Mia Herkt
6055a50948
File: Add is_nsfw property 2022-12-13 21:51:39 +01:00
Mia Herkt
b1ed63c401
README: Add note about StreamMaxLength in clamd.conf 2022-12-12 07:40:38 +01:00
Mia Herkt
a904922cbd
Add support for ClamAV 2022-12-12 07:35:05 +01:00
Mia Herkt
da30c8f8ff
index.html: Document appending file names 2022-12-01 03:28:25 +01:00
Mia Herkt
0b80a62f80
Add support for “secret” file URLs
Closes #47
2022-12-01 02:49:28 +01:00
Mia Herkt
ed84d3752c
Fix 500 on invalid paths 2022-12-01 01:26:32 +01:00
Mia Herkt
7661216bc0
Fix handling double file name extensions
Long names would get truncated at the end, causing problems
including unresolvable file URLs. Example with default settings:
    .package.lst → .package.

Fixes #61
2022-12-01 01:19:05 +01:00
Mia Herkt
9214bb4832
Add X-Expires to file response headers
Tells clients when files will expire, in milliseconds since Unix epoch.

Closes #50.
2022-11-30 02:30:52 +01:00
Mia Herkt
e168534258
Allow changing expiration date 2022-11-30 02:19:29 +01:00
Mia Herkt
afe2329bf5
templates/index: Remove unnecessary escaping 2022-11-30 02:19:29 +01:00
Mia Herkt
a182b6199b
Allow management operations like deleting files
This introduces the X-Token header field in the response of newly
uploaded files as a simple way for users to manage their own files.

It does not need to be particularly secure.
2022-11-30 02:19:29 +01:00
Mia Herkt
eb0b1d2f69
nsfw_detect: Use PyAV instead of ffmpegthumbnailer 2022-11-29 21:54:43 +01:00
Mia Herkt
14cfe3da58
nsfw_detect: Use pathlib, fix deprecation warning
Also fix glog suppression
2022-11-29 21:44:07 +01:00
Mia Herkt
aa443178e1
README: Also run db upgrade after git pull! 2022-11-29 17:23:56 +01:00
Mia Herkt
db9a20c94d
Add example systemd unit files for prune job 2022-11-29 17:23:30 +01:00
Mia Herkt
f25619b7e3
nsfw_detect: Tolerate score computation failure 2022-11-29 13:31:35 +01:00
Emi Simpson
af4b3b06c0
Add support for expiring files
SUPPLEMENTALLY:
- Add an `expiration` field to the `file` table of the database
- Produce a migration for the above change
- Overhaul the cleanup script, and integrate into fhost.py
  (now run using FLASK_APP=fhost flask prune)
- Replace the old cleanup script with a deprecation notice
- Add information about how to expire files to the index
- Update the README with information about the new script

Squashed commits:

Add a note explaining that expired files aren't immediately removed

Show correct times on the index page graph

Improve the migration script, removing the need for --legacy

Use automap in place of an explicit file map in migration

Remove vestigial `touch()`

Don't crash when upgrading a fresh database

Remove vestigial warning about legacy files

More efficiently filter to unexpired files when migrating

https://git.0x0.st/mia/0x0/pulls/72#issuecomment-224

Coalesce updates to the database during migration

https://git.0x0.st/mia/0x0/pulls/72#issuecomment-226

Remove vestigial database model

https://git.0x0.st/mia/0x0/pulls/72#issuecomment-261

prune:  Stream expired files from the database

(as opposed to collecting them all first)

config.example.py:  Add min & max expiration + description
2022-11-29 13:09:26 +01:00
Mia Herkt
00dba0e189
config.example.py: Clarify MIME ext mapping 2022-11-28 22:30:53 +01:00
Ember Hearth
be796b9b5b
Add example configuration file
See #73.
2022-11-28 22:30:43 +01:00
ca1ea88a10 Updating service names, updating gitignore 2022-11-20 23:56:59 +02:00
bc70403859 Adding uwsgi ini 2022-11-20 23:47:47 +02:00
a389c18e0e Applying boop changes 2022-11-20 23:44:41 +02:00
21ece7707f Merge remote-tracking branch 'mihaigalos/feat/put/add-support' into boop 2022-11-20 23:41:32 +02:00
Mia Herkt
b5f0cfdf6f
README: Clarify why serving file requests from the app is bad 2022-11-20 16:54:46 +01:00
Mia Herkt
4ba18146e1
README: Clarify how to change configuration 2022-11-20 13:05:17 +01:00
Mihai Galos
1abe43f4c0 Update index.html 2022-09-26 18:13:28 +02:00
Mihai Galos
b3763acee4 PUT: Add initial support 2022-09-26 17:52:49 +02:00
Mia Herkt
afb5811879
README: Warn users about URL fetch network security implications 2022-08-19 22:27:29 +02:00
Mia Herkt
c7a728ce84
Fix non-seekable file handles
Closes #59
2022-08-11 05:49:46 +02:00
Mia Herkt
5216e9ebaf
Open upload blacklist in text mode
This wasn’t working since Flask opens files in bin mode by default.
2022-08-01 18:26:35 +02:00
Alexey Sakovets
0db6e4b895 Fix mime splitting
mime[:mime.find(";")]   will remove last character if mime does not contain ";".
Use mime.split(";") instead.
2022-01-01 23:46:41 +03:00
mia
9c4a0fd5a6 remove short_url and add in-tree URLencoder (#53)
This PR removes the short_url dependency as per issue #41.
This implementation is pretty much the same as in short_url except I've rewritten the enbase() function to be iterative instead of recursive.
The only functions of the class are enbase() and debase() since those were the only functions being used by fhost.

Co-authored-by: 7415963987456321 <hrs70@hi.is>
Reviewed-on: https://git.0x0.st/mia/0x0/pulls/53
Co-authored-by: mia <mia@0x0.st>
Co-committed-by: mia <mia@0x0.st>
2021-12-01 13:25:33 +01:00
Nikolas Nyby
b8def71a94 Fix some flake8 errors in cleanup and nsfw_detect
Just some minor code cleanup
2021-08-06 15:19:08 -04:00
Mia Herkt
47ff3a1152
Support instance templates 2021-05-23 19:13:51 +02:00
Mia Herkt
b65209db7b
Add tests 2021-05-23 19:13:51 +02:00
Mia Herkt
3bdbab96c1
Support client-defined names in file URL routing
This allows requests like /j4Tf.bin/myfilename.dat to be served without
having to rewrite URLs at the frontend server.
2021-05-23 19:13:51 +02:00
Mia Herkt
73045dc5e5
Move storage to classes, support double suffixes 2021-05-23 19:13:51 +02:00
Mia Herkt
cd083a7f83
Use pathlib 2021-05-23 19:13:51 +02:00
Mia Herkt
b5ce94edeb
Update README 2021-05-23 19:13:51 +02:00
Mia Herkt
b7c12902da
Update requirements.txt 2021-05-23 19:13:51 +02:00
Mia Herkt
493119fc68
Drop Flask-Manager 2021-05-23 19:13:51 +02:00